Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Apparatus and method for developing secure software

Active Publication Date: 2005-12-08
MICRO FOCUS LLC
View PDF16 Cites 112 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Benefits of technology

[0011] The invention includes a computer readable medium with executable instructions to analyze program instructions for security vulnerabilities. The executable instructions convert diverse program instruction formats to a common format. A system model is derived from the common format. A static analysis is performed on the system model to identify security vulnerabilities. Security vul

Problems solved by technology

Information systems are becoming increasingly more complex, higher-powered, inter-connected, and openly accessible to partners and customers over vastly distributed networks.
These trends strain the ability of organizations to secure and protect digital data from misuse or unauthorized access.
Nearly every major business critical application deployed today contains vulnerabilities that can be exploited to cause considerable harm to the business or the assets it manages.
An attacker's biggest challenge is simply finding the vulnerabilities in the context of a large business application.
Firewalls and other network-oriented security solutions are not configured to block the type of access that business critical applications require.
In fact, today's business functions rely on this access so much that they would fail to operate if denied.
The true flaw in the outside-in premise, however, is that vulnerable software can be protected at all—somehow made un-vulnerable.
Nevertheless, coherent and practical solutions have not been identified.
There are a number of factors that make solutions difficult to identify.
For example, software security vulnerabilities are subtle, logical errors that can span thousands of lines of code, making accurate detection with reasonable performance extremely difficult.
The large software development tools vendors, however, have not made security a core part of their offerings.
Their customer base is still largely focused on how to improve creation of features and functionality—and the vendors' internal teams cannot easily recognize a changing paradigm while they work to improve the feature sets of their single-purpose products.
In addition, the high volume development tool providers are not adept at delivering enterprise-like solutions that a risk management system requires or sustaining the price points needed to support such a solution.
Indeed, the current state of development tool pricing has generally discouraged the security community from building developer-oriented solutions.
The problem is not just about finding technology to scan code, but includes creating and continually updating rules to detect these vulnerabilities.
Finally, it is unlikely that software security can be accomplished by a single point solution.
Similarly, it is unlikely that software security can be addressed solely at the developer level.
Software security is largely a risk management problem.

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Apparatus and method for developing secure software
  • Apparatus and method for developing secure software
  • Apparatus and method for developing secure software

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0022]FIG. 1 illustrates an apparatus 100 configured in accordance with an embodiment of the invention. The apparatus 100 includes a central processing unit 102 connected to a set of input and output devices 104 over a bus 106. By way of example, the input and output devices may include a keyboard, mouse, computer monitor, printer, and the like. Also connected to the bus 106 is a network interface 108, which uses standard devices to interface with a network 110, which may be a local area network, an intranet, the Internet, and the like.

[0023] A memory 112 is also connected to the bus 106. The memory 112 stores a set of executable instructions to implement the operations of the invention. In one embodiment, the executable instructions include three major modules: a security development module 114, a security test module 116, and a security monitoring module 118.

[0024] The security development module 114 includes executable instructions to facilitate a static analysis of software in...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

A computer readable medium includes executable instructions to analyze program instructions for security vulnerabilities. The executable instructions convert diverse program instruction formats to a common format. A system model is derived from the common format. A static analysis is performed on the system model to identify security vulnerabilities. Security vulnerabilities are then reported.

Description

[0001] This application claims priority to the U.S. Provisional Patent Application entitled “Apparatus and Method for Developing, Testing and Monitoring Secure Software”, Ser. No. 60 / 577,066, filed Jun. 4, 2004. This application is related to the following commonly owned and concurrently filed patent applications: “Apparatus and Method for Developing, Testing and Monitoring Secure Software”, U.S. Ser. No. ______, filed Dec. 10, 2004; “Apparatus and Method for Testing Secure Software”, U.S. Ser. No. ______, filed Dec. 10, 2004; “Apparatus and Method for Monitoring Secure Software”, U.S. Ser. No. ______, filed Dec. 10, 2004.BRIEF DESCRIPTION OF THE INVENTION [0002] This invention relates generally to software security. More particularly, this invention relates to comprehensive techniques for identifying software security vulnerabilities during software development, testing and deployment. BACKGROUND OF THE INVENTION [0003] Businesses are increasingly dependent on information technolog...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
IPC IPC(8): G06F11/30G06F12/14G06F21/00H04L9/00H04L9/32
CPCG06F21/577G06F11/3612
Inventor CHESS, BRIANDO, ARTHURFAY, SEANTHORNTON, ROGER
Owner MICRO FOCUS LLC
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products